VDB
CVE-2004-0761
CVE-2004-0761
PUBLISHED
CVSS 5 MEDIUM
Mozilla before 1.7, Firefox before 0.9, and Thunderbird before 0.7, allow remote attackers to use certain redirect sequences to spoof the security lock icon that makes a web page appear to be encrypted.
EPSS 1.47% · 81.3th percentile
Risk Scores
CVSS 2.0
5
EPSS Score
1.47%
81.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| mozilla | mozilla | 0 |
| mozilla | thunderbird | 0 |
| n/a | n/a | n/a |
| mozilla | firefox | 0 |
Exploit Intelligence
- SCOSA-2005.49 (circl)
- SUSE-SA:2004:036 (circl)
- RHSA-2004:421 (circl)
- http://www.mozilla.org/projects/security/known-vulnerabilities.html#mozilla1.7 (circl)
- FLSA:2089 (circl)
- 15495 (circl)
- oval:org.mitre.oval:def:3603 (circl)
- http://bugzilla.mozilla.org/show_bug.cgi?id=240053 (circl)
- mozilla-redirect-ssl-spoof(16871) (circl)
- oval:org.mitre.oval:def:9240 (circl)
Timeline
- Aug 3, 2004 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- Jul 11, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
References
- SCOSA-2005.49 vendor-advisory
- SUSE-SA:2004:036 vendor-advisory
- RHSA-2004:421 vendor-advisory
- http://www.mozilla.org/projects/security/known-vulnerabilities.html#mozilla1.7 url
- FLSA:2089 vendor-advisory
- 15495 vdb
- oval:org.mitre.oval:def:3603 vdb
- http://bugzilla.mozilla.org/show_bug.cgi?id=240053 url
- mozilla-redirect-ssl-spoof(16871) vdb
- oval:org.mitre.oval:def:9240 vdb
- https://nvd.nist.gov/vuln/detail/CVE-2004-0761 advisory